As expected, Colorado's Department of Law finalized and adopted draft amendments to Colorado's Privacy Act (CPA) Wednesday.

Data brokers and other businesses face major new obligations after California Gov. Gavin Newsom (D) signed SB-361 on Wednesday (see 2510080054), privacy attorneys blogged afterward.

Don Marti is the founder of a yet-to-be-named services firm for post-surveillance brands (see 2510060010).

An Ohio state representative questioned Google’s intentions for supporting an age-verification bill (HB-302) at a House Judiciary Committee hearing livestreamed Wednesday.

A new California law setting concrete deadlines for data breach notifications could make a big difference in the state, Emory Roane, Privacy Rights Clearinghouse (PRC) associate director of policy, said Tuesday.

Legislators can help protect kids on social media, but a cultural shift on the issue of child safety also will require collaboration from Big Tech, Arkansas Governor Sarah Huckabee Sanders (R) said Tuesday.

Vermont Rep. Monique Priestley (D) is “more than happy” to hash out how to break through a strong industry wall against including a private right of action in privacy legislation, she said Sunday in response to a blog post by Don Marti, the founder of a yet-to-be-named services firm for post-surveillance brands. Priestley is the sponsor of a comprehensive bill with a PRA, but lawmakers punted it in 2025 (see 2505300047).

Strong passwords and multi-factor authentication (MFA) are “key to protecting your privacy,” Tom Kemp, California Privacy Protection Agency executive director, wrote on the CPPA blog Thursday.

California Attorney General Rob Bonta (D) this week said he is supporting universal opt-out legislation that passed the legislature last month. Gov. Gavin Newsom (D) has until Oct. 12 to sign or veto the bill.

New privacy regulations took effect in Maryland and various other states on Wednesday. Read our coverage of the new requirements, including: